VDE-2024-028
Feb. 28, 2025, 12:00 nachm.
moneo \"Forgot Password\" function has a vulnerability which allows gaining privileged access.
VDE-2024-020
Feb. 12, 2025, 5:48 nachm.
A security researcher discovered a Cross Site Request Forgery (CSRF, XSRF) vulnerability in SMA Cluster Controller. The affected products are out of support (End-of-Life 2018-06-30).
VDE-2024-059
Dez. 3, 2024, 3:00 nachm.
An unauthenticated attacker would be able to send crafted requests to cause the CODESYS Gateway Server V2 to allocate excessive memory or consume all available TCP client connections. Besides, passwords …
VDE-2024-072
Dez. 3, 2024, 12:00 nachm.
The following firmware versions installed on several devices are vulnerable due to a vulnerability in the CODESYS Control V3 web server.
VDE-2023-042
Nov. 20, 2024, 12:00 nachm.
Critical vulnerability has been discovered in the utilized component PROFINET IO Device by Hilscher Gesellschaft für Systemautomation mbH. The impact of the vulnerability on the affected device is that it …
VDE-2024-069
Nov. 6, 2024, 12:27 nachm.
Multiple vulnerabilities have been discovered in Helmholz products that could allow RCE or unauthorized file access. CVE-2024-45272 affects the myREX24 V2 and myREX24.virtual products, while CVE-2024-45273 affects the REX200/250, myREX24 …
VDE-2024-046
Sept. 10, 2024, 4:00 nachm.
The OSCAT Basic library is one of several libraries developed and provided by OSCAT. OSCAT (oscat.de) stands for "Open Source Community for Automation Technology". The OSCAT Basic library offers function …
VDE-2024-041
Sept. 10, 2024, 10:00 vorm.
Echo Curve Viewer is an utility used for offline visualization of previously recorded envelope curve data. Envelope curve records are exported from other Endress+Hauser software products like FieldCare as .curves …